Our latest Electron production build is failing to automatically update on clients. We are using electron-builder: v23.0.2 to handle the automatic updates through electron-updater and we have not changed our code signing certificate.
electron-updater downloads the automatic update but fails to update with the following error:
Electron auto-update error: Error: New version 4.0.0 is not signed by the application owner: publisherNames: Developer ID Application: OUR COMPANY NAME, LLC (123F2ASF2), raw info: {
.....
"Status": 1,
"StatusMessage": "A certificate chain could not be built to a trusted root authority"
I have tried rebuilding the app from a machine running Windows and MacOS, using the same code signing certificate with the following script:
yarn build && cross-env CSC_LINK=../code-sign-certificate.p12 CSC_KEY_PASSWORD=password \
electron-builder build --config ./electron-builder/$environment-config.json --$platform \
-c.extraMetadata.main=build/electron.js -c.extraMetadata.version=$version \
--publish never
I've confirmed that our certificate has not expired. The resulting auto-update error has been the same for all new builds. ):
Any thoughts on what could be causing the "A certificate chain could not be built to a trusted root authority" message?